|
265011
|
- |
|
znc
|
znc
|
Client.cpp in ZNC 0.092 allows remote attackers to cause a denial of service (exception and daemon crash) via a PING command that lacks an argument.
|
CWE-20
Improper Input Validation
|
CVE-2010-2812
|
2010-08-18 13:00 |
2010-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265012
|
- |
|
znc
|
znc
|
Multiple unspecified vulnerabilities in ZNC 0.092 allow remote attackers to cause a denial of service (exception and daemon crash) via unknown vectors related to "unsafe substr() calls."
|
NVD-CWE-noinfo
|
CVE-2010-2934
|
2010-08-18 13:00 |
2010-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265013
|
- |
|
tomaz-muraus
|
open_blog
|
Cross-site request forgery (CSRF) vulnerability in Tomaz Muraus Open Blog 1.2.1, and possibly earlier, allows remote attackers to hijack the authentication of administrators for requests that change …
|
CWE-352
Origin Validation Error
|
CVE-2010-3030
|
2010-08-18 13:00 |
2010-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265014
|
- |
|
phpkick
|
phpkick
|
SQL injection vulnerability in statistics.php in PHPKick 0.8 allows remote attackers to execute arbitrary SQL commands via the gameday parameter in an overview action.
|
CWE-89
SQL Injection
|
CVE-2010-3029
|
2010-08-18 01:25 |
2010-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265015
|
- |
|
tycoon
|
baseball_script
|
SQL injection vulnerability in index.php in Tycoon Baseball Script 1.0.9 allows remote attackers to execute arbitrary SQL commands via the game_id parameter in a game_player action.
|
CWE-89
SQL Injection
|
CVE-2010-3027
|
2010-08-17 13:00 |
2010-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265016
|
- |
|
pligg
|
pligg_cms
|
Multiple SQL injection vulnerabilities in Pligg before 1.1.1 allow remote attackers to execute arbitrary SQL commands via the title parameter to (1) storyrss.php or (2) story.php.
|
CWE-89
SQL Injection
|
CVE-2010-2577
|
2010-08-17 02:37 |
2010-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265017
|
- |
|
pligg
|
pligg_cms
|
SQL injection vulnerability in groupadmin.php in Pligg before 1.1.1 allows remote attackers to execute arbitrary SQL commands via the role parameter, a different vulnerability than CVE-2010-2577.
|
CWE-89
SQL Injection
|
CVE-2010-3013
|
2010-08-17 02:12 |
2010-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265018
|
- |
|
citrix
|
online_plug-in_for_windows_for_xenapp_\&_xendesktop
|
The IICAClient interface in the ICAClient library in the ICA Client ActiveX Object (aka ICO) component in Citrix Online Plug-in for Windows for XenApp & XenDesktop before 12.0.3 allows remote attacke…
|
CWE-94
Code Injection
|
CVE-2010-2991
|
2010-08-13 06:18 |
2010-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265019
|
- |
|
muscle
|
pcsc-lite
|
Buffer overflow in the MSGFunctionDemarshall function in winscard_svc.c in the PC/SC Smart Card daemon (aka PCSCD) in MUSCLE PCSC-Lite 1.5.4 and earlier might allow local users to gain privileges via…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-4902
|
2010-08-12 23:22 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265020
|
- |
|
avahi
|
avahi-daemon
|
The originates_from_local_legacy_unicast_socket function in avahi-core/server.c in avahi-daemon 0.6.23 does not account for the network byte order of a port number when processing incoming multicast …
|
CWE-399
Resource Management Errors
|
CVE-2009-0758
|
2010-08-12 23:13 |
2009-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
